Application Security Analyst

This position will ensure adequate mitigation of application vulnerabilities. These application security activities would include testing such as SAST, DAST, SCA, potentially HAST/RAST and regression testing. This analyst shall ensure the testing is completed to an acceptable standard for input into the risk management process and Risk Register. This individual would contribute to the overall MROH IT SDLC and participate in waterfall and Agile development at MROH/AE. Finally, this position would contribute application security expertise to IT architecture development.

-3 years Software development or application security activities.

-1 years working with cloud environments

- Implement, optimize and maintain DevSecOps strategy

- Conduct SAST, DAST, SCA, RAST/HAST (if implemented)

- Conduct application security regression testing and document security configuration requirements

-ISC2 CSSLP, Mile2 SWAE, EC-Council C|EH, EC-Council E|CDE, EC-Council W|AHS or any other equivalent

- SCA, SAST and DAST tools.

-DevOps tools

-Software Development tools

-Ability to understand results of Penetration and vulnerability scanning

-Risk Assessment